Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/pEw2PWjusYW0QMgiUzqdBFNPkpc.roa
File: pEw2PWjusYW0QMgiUzqdBFNPkpc.roa (raw, json)
Hash identifier: aUCyu7vWfZ4zbBgTqTgNRnffzXeqKE0rH2KHJWwvXFQ=
Subject key identifier: A4:4C:36:3D:68:EE:B1:85:B4:40:C8:22:53:3A:9D:04:53:4F:92:97
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 018ADFE4DAD0D574D739568BBABD5E7DDE0E
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/pEw2PWjusYW0QMgiUzqdBFNPkpc.roa
Signing time: Fri 29 Sep 2023 07:43:51 +0000
ROA not before: Fri 29 Sep 2023 07:43:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216288
IP address blocks: 194.147.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:df:e4:da:d0:d5:74:d7:39:56:8b:ba:bd:5e:7d:de:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: Sep 29 07:43:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a44c363d68eeb185b440c822533a9d04534f9297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9c:5e:83:02:7a:80:d3:9e:01:72:34:dc:27:
eb:a9:18:fd:b9:5d:7c:8a:75:c0:38:99:96:0b:45:
b6:95:cc:76:f6:a6:7a:dd:c6:e3:0e:83:ba:3f:00:
da:39:4f:98:3c:ac:56:83:1d:f7:83:88:5c:1e:76:
eb:85:65:66:ef:7a:30:d8:75:8b:7c:16:ab:73:4d:
c3:b2:e9:8a:a7:50:4d:26:92:0b:86:71:81:4a:e7:
70:9a:df:bd:19:ff:54:ef:d3:61:d8:d9:75:73:de:
49:f8:44:d2:31:c3:63:f7:cd:47:4c:67:f0:66:43:
e7:d1:b8:2a:01:c2:b4:60:a4:c9:39:4e:40:e8:a0:
7f:68:4e:18:ff:b9:ce:91:06:f5:79:f7:64:c9:8f:
2a:d7:d5:9c:19:4f:fc:0e:a2:4c:fe:13:2e:0a:55:
51:99:02:ea:02:70:ec:7f:01:41:13:ce:46:63:1d:
8a:93:d3:92:4e:8a:ac:c5:50:29:45:c8:34:81:11:
a2:89:52:8a:7d:76:b8:d1:92:3c:1e:d0:7a:2e:01:
37:9e:20:70:02:c5:1c:15:54:95:9a:9d:16:6b:c2:
a7:56:c3:8c:69:21:87:09:a9:d3:ad:8d:29:8f:bb:
19:c6:3e:e3:ba:6e:06:6f:a0:b3:be:db:56:eb:9d:
37:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4C:36:3D:68:EE:B1:85:B4:40:C8:22:53:3A:9D:04:53:4F:92:97
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/pEw2PWjusYW0QMgiUzqdBFNPkpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.44.0/24
Signature Algorithm: sha256WithRSAEncryption
48:10:20:4c:24:0d:1b:53:11:2a:03:2d:39:bd:98:d4:32:48:
35:4f:56:02:fa:07:46:18:b4:70:c6:bf:7f:bc:cd:8b:4b:19:
8c:a1:b0:6c:a7:c6:e3:44:28:b5:f5:6e:eb:d5:32:87:53:07:
b2:26:d4:f5:d2:f3:69:ee:51:fb:7b:69:f5:9d:c7:dd:2c:69:
7e:7d:58:91:77:b3:ae:a1:c9:29:b9:06:27:5b:51:00:ce:f1:
8f:2a:44:7e:1c:f5:6c:ac:32:09:13:cb:35:48:4b:ac:61:94:
35:49:20:b7:43:bf:ed:40:9b:19:94:ca:25:46:86:36:d9:63:
9a:42:8b:cd:ca:36:5b:80:57:ce:8f:fa:1d:01:7d:13:35:48:
34:26:e5:a7:26:45:7e:71:b3:72:d4:0f:3b:20:09:06:7c:34:
29:d7:0f:d0:3e:aa:52:7e:6d:c2:63:1d:47:14:f0:f4:77:ef:
8b:d9:5c:23:06:07:f7:5a:32:09:94:14:9a:dd:1b:ef:22:d9:
e5:f7:9f:0d:c0:04:e3:46:a9:e3:db:05:8d:eb:d9:2b:e3:30:
be:5e:e7:02:0c:50:87:91:a3:d2:d8:dd:96:a7:6e:4b:27:31:
25:83:1a:7a:89:01:6d:62:5c:c3:d7:30:a3:c6:44:33:d2:e3:
57:6c:88:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:50 2025 by rpki-client